https://feed.craftedsignal.io/tags/cve-2019-25611/Trending threats, MITRE ATT&CK coverage, and detection metadata — refreshed continuously.Hugoenhello@craftedsignal.iohello@craftedsignal.ioMon, 23 Mar 2026 12:00:00 +0000https://feed.craftedsignal.io/briefs/2026-03-miniftp-overflow/Mon, 23 Mar 2026 12:00:00 +0000hello@craftedsignal.iohttps://feed.craftedsignal.io/briefs/2026-03-miniftp-overflow/MiniFtp contains a buffer overflow vulnerability in the parseconf_load_setting function allowing local attackers to execute arbitrary code by supplying oversized configuration values in the miniftpd.conf file.The MiniFtp application is susceptible to a buffer overflow vulnerability, identified as CVE-2019-25611, within the parseconf_load_setting function. This flaw allows a local attacker to execute arbitrary code on the system. The vulnerability stems from insufficient bounds checking when loading configuration values from the miniftpd.conf file. By crafting a malicious configuration file with values exceeding 128 bytes, an attacker can overflow stack buffers, overwrite the return address, and…

]]>criticaladvisorycve-2019-25611buffer-overflowprivilege-escalationminiftp